Windows PsExec Can Be Abused to Execute Malicious Code
Now this just gives me the shits. There is a standard defense for this in Windows ASR (Attack Surface Reduction) that anybody who has Windows Professional or higher can apply.
I know it works because I have tested my pen testing skills this way.
How Windows Command-line Utility PsExec Can Be Abused To Execute Malicious Code
PsExec represents one of the most contradictory tools in the cybersecurity landscape, a legitimate system administration utility that has become a cornerstone of malicious lateral movement campaigns.
Guru Baran
Recent threat intelligence reports indicate that PsExec remains among the top five tools used in cyberattacks as of 2025, with ransomware groups like Medusa, LockBit, and Kasseika actively leveraging it for network propagation
I mean - really.
#enoughsaid